CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-3471

HIGH
7.2
CVSS Severity Score
EPSS Score0.1210%
EPSS Percentile28.16th
Published2007年6月28日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.

Affected Platforms (CPE)

💻
Sun

Solaris

= 8.0
💻
Sun

Solaris

= 8.0
💻
Sun

Solaris

= 9.0
💻
Sun

Solaris

= 9.0
💻
Sun

Solaris

= 10.0
💻
Sun

Solaris

= 10.0

References & Advisories

🔗 http://osvdb.org/36608
🔗 http://secunia.com/advisories/25876
🔗 http://secunia.com/advisories/26136
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102954-1
🔗 http://support.avaya.com/elmodocs2/security/ASA-2007-310.htm
🔗 http://www.securityfocus.com/bid/24687
🔗 http://www.vupen.com/english/advisories/2007/2369
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/35127

関連する脆弱性情報

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.